Slashdot Mirror

← Back to Users

User: Lennie

Lennie's activity in the archive.

Stories
0
Comments
3,689
First seen
Last seen
Profile
(view on slashdot.org)

Comments · 3,689

  1. Re:They still need a C&C on New ZeuS Botnet No Longer Needs Central Command Servers · · Score: 1

    They could still use Diffie Hellman key exchange to bootstrap the encryption. You might be able to decrypt the traffic to/from a node that you have control over, but you won't be able to see the traffic between other nodes.

  2. Re:They still need a C&C on New ZeuS Botnet No Longer Needs Central Command Servers · · Score: 1

    "signature authority" How do you trace that ? It would be similair to a selfsigned certificate used with HTTPS.

    The public key is obviously part of the software, you can't man-in-the-middle that. Why would there be a private key in the bot software ?

    The issuer of the commands just connect to one of the nodes in the P2P-network and creates a command and signs his/her command.

    It is much more likely they made an implementation mistake though, that is usually how these things get cleaned up.

  3. Secure routing standards ? on FCC Chair Calls On ISPs To Adopt New Security Measures · · Score: 1

    What secure routing standards ? There are only secure routing practises, there are a few standards in development, starting with "Resource Public Key Infrastructure (RPKI)" but that is still very new and isn't yet broadly available by vendors.

  4. Re:Icon on VLC 2.0 'Twoflower' Released For Windows & Mac · · Score: 1

    Ones a year it already different during Christmas. That is atleast something right ;-)

  5. Re:xkcd on Google Working On Password Generator For Chrome · · Score: 1

    This is also relevant ;-)

    http://xkcd.com/538/

  6. Re:What could go wrong? on Google Working On Password Generator For Chrome · · Score: 1

    I like browserid, atleast when it gets out of the beta-stage (which it should in the coming months):

    https://browserid.org/about
    http://identity.mozilla.com/post/7616727542/introducing-browserid-a-better-way-to-sign-in

    It is a quick and easy way to verify you are the owner of an email-address and an open specification.

    Then Firefox will get it in the browser-UI, here is an old mockup:

    https://wiki.mozilla.org/images/4/4c/IdentityInTheBrowser.png

    Firefox still has about 25% of the market, if those users get an easy way to login to sites that should help with adoption.

  7. Re:What could go wrong? on Google Working On Password Generator For Chrome · · Score: 2

    And there is no Ironclad way to prevent tracking.

    You would need to anonymize all webtraffic, remove features from browsers people actually use, make all browsers work exactly the same (which you can not or you will need to create a monopoly of one browser) and disobey the HTTP/1.1 RFC with things like the E-tag.

  8. Re:$200,000 is bullshit on UK Student Jailed For Facebook Hack Despite 'Ethical Hacking' Defense · · Score: 2

    It usually boils down to all the time spend (thus money) that was needed to reinstall all the servers in the datacenter with a new known good image ?

  9. Re:Uhh on UK Student Jailed For Facebook Hack Despite 'Ethical Hacking' Defense · · Score: 1

    It isn't bribery, he just helped find more vulnerabilities. :-)

    But really, sometimes it takes evidence to convince these companies to look at something.

    I'm sure sending them part of their source code would get their attention.

  10. Re:Wikipedia says on Deadly H5N1 Flu Studies To Stay Secret... For Now · · Score: 1

    But it might be possible people who don't get sick can still infect others.

  11. Re:Could use the real internet eh! on A Look At Microsoft's 'Mini Internet' For Testing IE · · Score: 1

    Because on a seperate network you can rerun the same test with the same results. You can not do that on the Internet.

  12. Re:MariaDB? on Oracle Claims Dramatic MySQL Performance Improvements · · Score: 1

    Tried Drizzle, yet ?

  13. Re:OPT OUT on Female Passengers Say They Were Targeted For TSA Body Scanners · · Score: 1

    And when you talk to the press talk about how they do it in Israel and what Bruce Schneier has to say about that.

  14. Re:OPT OUT on Female Passengers Say They Were Targeted For TSA Body Scanners · · Score: 4, Informative

    Who knows, maybe the paint used on the Hindenburg was cheap.

  15. Re:Not a failing in SSL on How To Pull Location Data From Encrypted Google Maps Sessions · · Score: 1

    SPDY to the rescue ! :-)

  16. Re:Scathing, Absolutely Scathing on Pink Floyd Engineer Alan Parsons Rips Audiophiles, YouTube and Jonas Brothers · · Score: 1

    Actually, as far as I'm aware of YouTube does pay some money to artists through MPIA or something like that. Some kind of settlement, I don't remember how it works.

  17. Re:JS is not OO on Ask Slashdot: Making JavaScript Tolerable For a Dyed-in-the-Wool C/C++/Java Guy? · · Score: 1

    And functional like LISP.

  18. Re:Still no Flash in mobile ... on Firefox 10 Released · · Score: 1

    Looks to me like it is ready and scheduled for Firefox 11:

    https://wiki.mozilla.org/Features/Release_Tracking#Firefox_11:_Mobile

    Good thing is, you don't have to wait a year, but it will be available to you in 6 weeks ;-)

  19. Re:Also on Firefox 10 Released · · Score: 1

    I think you got that wrong.

    It still is true.

    There was a 9.0.1 or something of Firefox it fixed a few things that causes problems for some people.

    It just is, they want to push out new features to users more rapidly/regularly.

    So you'll mostly see Firefox 10, Firefox 11 and so on.

  20. Re:It's called "the inner-platform anti-pattern" on Wikipedia Chooses Lua As Its New Template Language · · Score: 2

    As I understand it:

    MediaWiki is written in PHP and they wanted to create a sandbox for the templates scripts, so they choose to use Lua as a PHP extension.

    Because Lua is very suitable for embedding, as that is what it's general purpose in life is.

    There is no PHP in a sandboxing inside PHP as far as I'm aware of.

  21. Re:Don't worry on Ask Slashdot: Transitioning From 'Hacker' To 'Engineer'? · · Score: 1

    Well, the design of the UI should be handled not by a programmer but someone who actually understands users and UI design.

  22. Re:We know how much warming it can cause on Don't Worry About Global Warming, Say 16 Scientists in the WSJ · · Score: 1

    I think a few things to look at:
    - it is important to know what the world will look like if the temperature does go up when there are as many people on earth as their are now.
    - only then is it useful to look at the cause and if we can do something it.
    - after which we can figure out: does it make sense (among which are economical) to try and do something about if we can at all.

    The question if we are the cause isn't really important at all, only in the second part does it play a role.

  23. Re:Slashidiots, get a clue on Don't Worry About Global Warming, Say 16 Scientists in the WSJ · · Score: 1

    The news is, that it got printed in the WSJ.

    Not that people on Slashdot should believe the article or people who signed it.

  24. Re:the 16 scientists are not climatologists on Don't Worry About Global Warming, Say 16 Scientists in the WSJ · · Score: 1

    I would think 1% would be a lot. So can you be a bit more precise ? How much is it ?

  25. Re:the 16 scientists are not climatologists on Don't Worry About Global Warming, Say 16 Scientists in the WSJ · · Score: 1

    That is exactly what the traders and other works in the financial sector say: economists are full of shit. Predictions by economists are wrong, you would be a fool to listen to them.